keycloak-scim/server-spi-private/src/main/java/org/keycloak/models/Constants.java

/*
 * Copyright 2016 Red Hat, Inc. and/or its affiliates
 * and other contributors as indicated by the @author tags.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 * http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package org.keycloak.models;

import org.keycloak.OAuth2Constants;

import java.util.Arrays;
import java.util.Collection;
import java.util.regex.Pattern;

/**
 * @author <a href="mailto:bill@burkecentral.com">Bill Burke</a>
 * @version $Revision: 1 $
 */
public final class Constants {
    public static final String ADMIN_CONSOLE_CLIENT_ID = "security-admin-console";
    public static final String ADMIN_CLI_CLIENT_ID = "admin-cli";

    public static final String ACCOUNT_MANAGEMENT_CLIENT_ID = "account";
    public static final String BROKER_SERVICE_CLIENT_ID = "broker";
    public static final String REALM_MANAGEMENT_CLIENT_ID = "realm-management";

    public static final Collection<String> defaultClients = Arrays.asList(ACCOUNT_MANAGEMENT_CLIENT_ID, ADMIN_CLI_CLIENT_ID, BROKER_SERVICE_CLIENT_ID, REALM_MANAGEMENT_CLIENT_ID, ADMIN_CONSOLE_CLIENT_ID);

    public static final String INSTALLED_APP_URN = "urn:ietf:wg:oauth:2.0:oob";
    public static final String INSTALLED_APP_URL = "http://localhost";
    public static final String READ_TOKEN_ROLE = "read-token";
    public static final String[] BROKER_SERVICE_ROLES = {READ_TOKEN_ROLE};
    public static final String OFFLINE_ACCESS_ROLE = OAuth2Constants.OFFLINE_ACCESS;

    public static final String AUTHZ_UMA_PROTECTION = "uma_protection";
    public static final String AUTHZ_UMA_AUTHORIZATION = "uma_authorization";
    public static final String[] AUTHZ_DEFAULT_AUTHORIZATION_ROLES = {AUTHZ_UMA_AUTHORIZATION};

    // 15 minutes
    public static final int DEFAULT_ACCESS_TOKEN_LIFESPAN_FOR_IMPLICIT_FLOW_TIMEOUT = 900;
    // 30 days
    public static final int DEFAULT_OFFLINE_SESSION_IDLE_TIMEOUT = 2592000;
    // KEYCLOAK-7688 Offline Session Max for Offline Token
    // 60 days
    public static final int DEFAULT_OFFLINE_SESSION_MAX_LIFESPAN = 5184000;

    public static final String VERIFY_EMAIL_KEY = "VERIFY_EMAIL_KEY";
    public static final String VERIFY_EMAIL_CODE = "VERIFY_EMAIL_CODE";
    public static final String EXECUTION = "execution";
    public static final String CLIENT_ID = "client_id";
    public static final String TAB_ID = "tab_id";
    public static final String KEY = "key";
    public static final String KC_ACTION = "kc_action";
    public static final String IS_AIA_REQUEST = "IS_AIA_REQUEST";
    public static final String AIA_SILENT_CANCEL = "silent_cancel";

    public static final String SKIP_LINK = "skipLink";
    public static final String TEMPLATE_ATTR_ACTION_URI = "actionUri";
    public static final String TEMPLATE_ATTR_REQUIRED_ACTIONS = "requiredActions";

    // Prefix for user attributes used in various "context"data maps
    public static final String USER_ATTRIBUTES_PREFIX = "user.attributes.";

    // Indication to admin-rest-endpoint that realm keys should be re-generated
    public static final String GENERATE = "GENERATE";

    public static final int DEFAULT_MAX_RESULTS = 100;

    // Delimiter to be used in the configuration of authenticators (and some other components) in case that we need to save
    // multiple values into single string
    public static final String CFG_DELIMITER = "##";

    // Better performance to use this instead of String.split
    public static final Pattern CFG_DELIMITER_PATTERN = Pattern.compile("\\s*" + CFG_DELIMITER + "\\s*");

    public static final String OFFLINE_ACCESS_SCOPE_CONSENT_TEXT = "${offlineAccessScopeConsentText}";
}
KEYCLOAK-1524 Source code headers 2016-02-03 10:20:22 +00:00			`/*`
			`* Copyright 2016 Red Hat, Inc. and/or its affiliates`
			`* and other contributors as indicated by the @author tags.`
			`*`
			`* Licensed under the Apache License, Version 2.0 (the "License");`
			`* you may not use this file except in compliance with the License.`
			`* You may obtain a copy of the License at`
			`*`
			`* http://www.apache.org/licenses/LICENSE-2.0`
			`*`
			`* Unless required by applicable law or agreed to in writing, software`
			`* distributed under the License is distributed on an "AS IS" BASIS,`
			`* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`* See the License for the specific language governing permissions and`
			`* limitations under the License.`
			`*/`

KEYCLOAK-1385 Introduce end-of-line normalization 2015-07-17 11:45:43 +00:00			`package org.keycloak.models;`

KEYCLOAK-904 Consents support. Added scopeParamRequired flag to RoleModel 2015-09-23 10:52:37 +00:00			`import org.keycloak.OAuth2Constants;`

Fix null protocols in default realm applications 2017-03-31 21:11:52 +00:00			`import java.util.Arrays;`
			`import java.util.Collection;`
KEYCLOAK-9572 Support for multiple CRLs with X509 authentication 2019-03-13 20:18:37 +00:00			`import java.util.regex.Pattern;`
Fix null protocols in default realm applications 2017-03-31 21:11:52 +00:00
KEYCLOAK-1385 Introduce end-of-line normalization 2015-07-17 11:45:43 +00:00			`/**`
			`* @author <a href="mailto:bill@burkecentral.com">Bill Burke</a>`
			`* @version $Revision: 1 $`
			`*/`
KEYCLOAK-9572 Support for multiple CRLs with X509 authentication 2019-03-13 20:18:37 +00:00			`public final class Constants {`
			`public static final String ADMIN_CONSOLE_CLIENT_ID = "security-admin-console";`
			`public static final String ADMIN_CLI_CLIENT_ID = "admin-cli";`
KEYCLOAK-1385 Introduce end-of-line normalization 2015-07-17 11:45:43 +00:00
KEYCLOAK-9572 Support for multiple CRLs with X509 authentication 2019-03-13 20:18:37 +00:00			`public static final String ACCOUNT_MANAGEMENT_CLIENT_ID = "account";`
			`public static final String BROKER_SERVICE_CLIENT_ID = "broker";`
			`public static final String REALM_MANAGEMENT_CLIENT_ID = "realm-management";`
KEYCLOAK-1385 Introduce end-of-line normalization 2015-07-17 11:45:43 +00:00
KEYCLOAK-9572 Support for multiple CRLs with X509 authentication 2019-03-13 20:18:37 +00:00			`public static final Collection<String> defaultClients = Arrays.asList(ACCOUNT_MANAGEMENT_CLIENT_ID, ADMIN_CLI_CLIENT_ID, BROKER_SERVICE_CLIENT_ID, REALM_MANAGEMENT_CLIENT_ID, ADMIN_CONSOLE_CLIENT_ID);`
Fix null protocols in default realm applications 2017-03-31 21:11:52 +00:00
KEYCLOAK-9572 Support for multiple CRLs with X509 authentication 2019-03-13 20:18:37 +00:00			`public static final String INSTALLED_APP_URN = "urn:ietf:wg:oauth:2.0:oob";`
			`public static final String INSTALLED_APP_URL = "http://localhost";`
			`public static final String READ_TOKEN_ROLE = "read-token";`
			`public static final String[] BROKER_SERVICE_ROLES = {READ_TOKEN_ROLE};`
			`public static final String OFFLINE_ACCESS_ROLE = OAuth2Constants.OFFLINE_ACCESS;`
KEYCLOAK-904 Offline session idle timeout + admin console 2015-10-14 15:45:46 +00:00
KEYCLOAK-9572 Support for multiple CRLs with X509 authentication 2019-03-13 20:18:37 +00:00			`public static final String AUTHZ_UMA_PROTECTION = "uma_protection";`
			`public static final String AUTHZ_UMA_AUTHORIZATION = "uma_authorization";`
			`public static final String[] AUTHZ_DEFAULT_AUTHORIZATION_ROLES = {AUTHZ_UMA_AUTHORIZATION};`
[KEYCLOAK-2753] - Fine-grained Authorization Services 2016-06-17 05:07:34 +00:00
KEYCLOAK-1129 Implicit flow: more work 2015-11-27 07:29:50 +00:00			`// 15 minutes`
KEYCLOAK-9572 Support for multiple CRLs with X509 authentication 2019-03-13 20:18:37 +00:00			`public static final int DEFAULT_ACCESS_TOKEN_LIFESPAN_FOR_IMPLICIT_FLOW_TIMEOUT = 900;`
KEYCLOAK-904 Offline session idle timeout + admin console 2015-10-14 15:45:46 +00:00			`// 30 days`
KEYCLOAK-9572 Support for multiple CRLs with X509 authentication 2019-03-13 20:18:37 +00:00			`public static final int DEFAULT_OFFLINE_SESSION_IDLE_TIMEOUT = 2592000;`
KEYCLOAK-7688 Offline Session Max for Offline Token 2018-06-25 00:27:50 +00:00			`// KEYCLOAK-7688 Offline Session Max for Offline Token`
			`// 60 days`
KEYCLOAK-9572 Support for multiple CRLs with X509 authentication 2019-03-13 20:18:37 +00:00			`public static final int DEFAULT_OFFLINE_SESSION_MAX_LIFESPAN = 5184000;`
KEYCLOAK-2011 2015-10-23 20:05:27 +00:00
KEYCLOAK-9572 Support for multiple CRLs with X509 authentication 2019-03-13 20:18:37 +00:00			`public static final String VERIFY_EMAIL_KEY = "VERIFY_EMAIL_KEY";`
			`public static final String VERIFY_EMAIL_CODE = "VERIFY_EMAIL_CODE";`
			`public static final String EXECUTION = "execution";`
			`public static final String CLIENT_ID = "client_id";`
			`public static final String TAB_ID = "tab_id";`
			`public static final String KEY = "key";`
KEYCLOAK-10854: App initiated actions phase I 2019-07-16 19:09:09 +00:00			`public static final String KC_ACTION = "kc_action";`
			`public static final String IS_AIA_REQUEST = "IS_AIA_REQUEST";`
KEYCLOAK-10854: App-initiated actions Phase I 2019-07-25 22:24:33 +00:00			`public static final String AIA_SILENT_CANCEL = "silent_cancel";`
KEYCLOAK-2172 Make Identity broker User Attribute mappers compatible with First Broker Login flow 2015-12-01 12:15:06 +00:00
KEYCLOAK-9572 Support for multiple CRLs with X509 authentication 2019-03-13 20:18:37 +00:00			`public static final String SKIP_LINK = "skipLink";`
			`public static final String TEMPLATE_ATTR_ACTION_URI = "actionUri";`
			`public static final String TEMPLATE_ATTR_REQUIRED_ACTIONS = "requiredActions";`
KEYCLOAK-4016 Provide a Link to go Back to The Application on a Timeout 2017-05-19 13:28:04 +00:00
KEYCLOAK-2172 Make Identity broker User Attribute mappers compatible with First Broker Login flow 2015-12-01 12:15:06 +00:00			`// Prefix for user attributes used in various "context"data maps`
KEYCLOAK-9572 Support for multiple CRLs with X509 authentication 2019-03-13 20:18:37 +00:00			`public static final String USER_ATTRIBUTES_PREFIX = "user.attributes.";`
KEYCLOAK-905 Realm keys rotation support on adapters 2016-09-06 18:15:00 +00:00
			`// Indication to admin-rest-endpoint that realm keys should be re-generated`
KEYCLOAK-9572 Support for multiple CRLs with X509 authentication 2019-03-13 20:18:37 +00:00			`public static final String GENERATE = "GENERATE";`
KEYCLOAK-3733 Set default max results for paginated endpoints 2016-10-28 07:15:05 +00:00
KEYCLOAK-9572 Support for multiple CRLs with X509 authentication 2019-03-13 20:18:37 +00:00			`public static final int DEFAULT_MAX_RESULTS = 100;`
KEYCLOAK-6630 Client scopes initial support (#5076) * KEYCLOAK-6630 KEYCLOAK-349 Client Scopes Co-authored-by: vramik <vramik@redhat.com> * KEYCLOAK-6630 Change some clientTemplate occurences to clientScope 2018-06-08 13:38:38 +00:00
KEYCLOAK-9572 Support for multiple CRLs with X509 authentication 2019-03-13 20:18:37 +00:00			`// Delimiter to be used in the configuration of authenticators (and some other components) in case that we need to save`
			`// multiple values into single string`
			`public static final String CFG_DELIMITER = "##";`

			`// Better performance to use this instead of String.split`
			`public static final Pattern CFG_DELIMITER_PATTERN = Pattern.compile("\\s" + CFG_DELIMITER + "\\s");`

			`public static final String OFFLINE_ACCESS_SCOPE_CONSENT_TEXT = "${offlineAccessScopeConsentText}";`
KEYCLOAK-1385 Introduce end-of-line normalization 2015-07-17 11:45:43 +00:00			`}`